[64028] in North American Network Operators' Group
RE: domainmonger.com with wildcard NS?
daemon@ATHENA.MIT.EDU (Mike Damm)
Tue Oct 14 14:21:51 2003
From: Mike Damm <MikeD@irwinresearch.com>
To: 'Rick Ernst' <erond@legendz.com>, nanog@merit.edu
Date: Tue, 14 Oct 2003 11:07:02 -0700
Errors-To: owner-nanog-outgoing@merit.edu
This is for domain parking. Users can configure their domains (or use a
default I assume) to use these name servers, which in turn point everything
to a parking page. My guess is the parking page is a) down b) fat fingered
IP c) intentionally left blank.
I have seen hosting companies do this to automatically point all domains to
their hosting machines without the need for zone maintenance.
-Mike
-----Original Message-----
From: Rick Ernst [mailto:erond@legendz.com]
Sent: Tuesday, October 14, 2003 10:07 AM
To: nanog@merit.edu
Subject: domainmonger.com with wildcard NS?
This was brought to my attention by a friend. It looks like
ns1.domainmonger.com and ns2.domainmonger.com are doing wildcard A records
for
all zones, including those that already exist.
If you go to their site and try to register a domain, it properly shows if
the
domain exists or not.
I'm trying to figure out what the reasoning is behind this.
My friend alo pointed out this CERT alert, but I'm not sure how it relates:
http://www.kb.cert.org/vuls/id/109475
Rick
-------
; <<>> DiG 9.2.3rc4 <<>> @ns1.domainmonger.com www.esdfsadfsdftreet.com a
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50340
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION:
;www.esdfsadfsdftreet.com. IN A
;; ANSWER SECTION:
www.esdfsadfsdftreet.com. 1200 IN A 216.52.102.86
;; AUTHORITY SECTION:
com. 1200 IN NS ns1.domainmonger.com.
com. 1200 IN NS ns2.domainmonger.com.
;; Query time: 37 msec
;; SERVER: 216.98.150.33#53(ns1.domainmonger.com)
;; WHEN: Tue Oct 14 09:59:24 2003
;; MSG SIZE rcvd: 107
-----
; <<>> DiG 9.2.3rc4 <<>> @ns2.domainmonger.com www.legendz.com a
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40110
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION:
;www.legendz.com. IN A
;; ANSWER SECTION:
www.legendz.com. 1200 IN A 216.52.102.86
;; AUTHORITY SECTION:
com. 1200 IN NS ns1.domainmonger.com.
com. 1200 IN NS ns2.domainmonger.com.
;; Query time: 91 msec
;; SERVER: 216.122.4.81#53(ns2.domainmonger.com)
;; WHEN: Tue Oct 14 10:01:28 2003
;; MSG SIZE rcvd: 98
